Roles and Permissions
CRYMBO Connect uses Role-Based Access Control (RBAC) to manage user access securely and flexibly.
Available Roles
| Role | Capabilities |
|---|---|
| Admin | Full platform management and configuration rights. |
| Institution Operator | Manage users, transactions, compliance, and operations. |
| Compliance Officer | Access compliance dashboards, KYC/KYT scoring, risk monitoring. |
| Finance Controller | Manage payment operations, balances, withdrawals. |
| End-User | Access own accounts, balances, and transactions. |
Custom Roles (Optional Future)
- Institutions may define additional roles with custom scopes via API.
Least Privilege Enforcement
- Users are assigned the minimum required permissions based on their roles.
- Permissions are validated both at the UI level and backend API level.